Cyber Security Management System Expert

Tokyo
Technology Shared Services – Global Safety and Quality /
Employee /
Hybrid
Apply for this job
About Woven by Toyota
Woven by Toyota is enabling Toyota’s once-in-a-century transformation into a mobility company. Inspired by a legacy of innovating for the benefit of others, our mission is to challenge the current state of mobility through human-centric innovation — expanding what “mobility” means and how it serves society.

Our work centers on four pillars: AD/ADAS, our autonomous driving and advanced driver assist technologies; Arene, our software development platform for software-defined vehicles; Woven City, a test course for mobility; and Cloud & AI, the digital infrastructure powering our collaborative foundation. Business-critical functions empower these teams to execute, and together, we’re working toward one bold goal: a world with zero accidents and enhanced well-being for all.

=========================================================================

TEAM
The Global Audit & Assessment (GAA) team, part of the Global Safety & Quality line of business, ensures the quality of software for safe mobility services across Woven by Toyota, Toyota Motor Corporation, and affiliates. Our mission is to deliver safe, secure, high-quality software, contributing to Toyota's evolution as a software-driven carmaker.

The GAA team’s responsibilities include establishing engineering standards for mass-production software development, providing genba support to engineering teams (including hands-on training), delivering audits and assessments as a service, and governing post-development software quality in the market.

Join our team of professionals committed to advancing software safety and quality in the automotive industry. You will report directly to the Head of Global Audit & Assessment and work in a hybrid schedule with at least three days per week in the office.

You will report to the Head of the Global Audit and Assessment function and follow a hybrid schedule with 3+ days in the office.

WHO ARE WE LOOKING FOR?
As vehicles become more connected and digitized, ensuring cybersecurity becomes crucial for consumer protection. UN-R155 mandates that OEMs and suppliers establish and operate a mature Cyber Security Management System (CSMS). This system ensures both the security of their own products and the consideration of cybersecurity throughout the entire supply chain. We are looking for someone independent and driven to lead CSMS implementation at Woven and support the integration of CSMS into Woven company-level management system. 

RESPONSIBILITIES

    • Define and establish the CSMS aligned with the CSMS (ISO/SAE 21434) of Toyota Motor Corporation and UN R155 requirements
    • Develop policies, processes, and governance structures for cybersecurity risk management across the product lifecycle
    • Support the integration of CSMS into Woven Engineering Standards and Woven Integrated Management System (comprising QMS, CSMS and SUMS)
    • Support the adoption of CSMS by product engineering teams for mass production development
    • Continuously check the adherence to CSMS by product engineering teams through regular audits and assessments
    • Develop, maintain, manage and own Woven CSMS program/roadmap. Ensure alignment and approval of both Woven and TMC management for Woven CSMS
    • Improve internal awareness of Woven CSMS through training and consultation support. Define and track KPIs.
    • Create engineering guidelines, templates, and checklists for cybersecurity activities (requirements, architecture, coding, verification)
    • Provide genba support (hands-on coaching) to engineering teams for secure design, coding, and testing practices
    • Ensure traceability of cybersecurity requirements from concept through deployment
    • Stay abreast of evolving cybersecurity regulations, industry standards, and best practices. Participate in TMC CSMS WorkGroup

MINIMUM QUALIFICATIONS

    • Bachelor’s degree (minimum) in Computer Science, Electrical/Electronics Engineering, Automotive Engineering, or a related technical field
    • Ability to define processes, guidelines, templates, and checklists for cybersecurity activities
    • Experience conducting internal audits, assessments, and readiness checks for CSMS certification
    • Tool familiarity: requirement management systems (JAMA, Polarion, Doors), vulnerability scanning, and security test frameworks
    • Experience supporting engineering teams (genba support), including TARA reviews, design reviews, secure coding, and testing practices
    • Excellent communication skills, with the ability to convey technical concepts to non-technical audiences
    • Knowledge of relevant industry standards & regulations (e.g. ISO/SAE 21434, UNR 155) and understanding of their impact on the automotive industry
    • Strong cross-cultural communication skills with Japanese language ability

NICE TO HAVES

    • Master’s degree  in Systems Engineering, Cybersecurity, or Automotive Systems
    • A working understanding in risk-driven cybersecurity methodologies
    • Participation in the space of automotive security such as attendance of Automotive Security conferences, published works or participation in working groups
    • Experience within the Toyota Group and an understanding of TMC CSMS
    • ASPICE for CS certification
=========================================================================
Important Points
・All interviews will be arranged via Google Meet, unless otherwise stated.
・The same job descriptions are available in both English and Japanese; therefore, we kindly ask that you apply to only one version.
・We kindly request that you submit your resume in English, if possible. However, Japanese resumes are also acceptable. Please note that, depending on the English proficiency requirements of the role, we may request an English version of your resume later in the process.

WHAT WE OFFER
・Competitive Salary - Based on experience
・Work Hours - Flexible working time
・Paid Holiday - 20 days per year (prorated)
・Sick Leave - 6 days per year (prorated)
・Holiday - Sat & Sun, Japanese National Holidays, and other days defined by our company
・Japanese Social Insurance - Health Insurance, Pension, Workers’ Comp, and Unemployment Insurance, Long-term care insurance
・Housing Allowance
・Retirement Benefits
・Rental Cars Support
・In-house Training Program (software study/language study)

Our Commitment
・We are an equal opportunity employer and value diversity.
・Any information we receive from you will be used only in the hiring and onboarding process. Please see our privacy notice for more details.
Apply for this job

Woven by Toyota Home Page

Jobs powered by Lever logo